$ rpki-client -vvf rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft File: d0ZKhG930cTTZqMGuAaTn88qYBo.mft (raw, json) Hash identifier: Ux/qVlVhwkL9ljqVW9We8tz9kXWa20VD7QUmFnjWXxw= Subject key identifier: 77:E6:BD:E2:88:1B:A7:1C:29:8B:E2:46:A2:93:E7:D5:38:2B:E7:94 Authority key identifier: 77:46:4A:84:6F:77:D1:C4:D3:66:A3:06:B8:06:93:9F:CF:2A:60:1A Certificate issuer: /CN=A91B74D6/serialNumber=77464A846F77D1C4D366A306B806939FCF2A601A Certificate serial: FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft Manifest number: F7 Signing time: Sat 23 Aug 2025 05:23:56 +0000 Manifest this update: Sat 23 Aug 2025 05:23:56 +0000 Manifest next update: Sat 30 Aug 2025 05:23:56 +0000 Files and hashes: 1: d0ZKhG930cTTZqMGuAaTn88qYBo.crl (hash: bjUFrTMAPU83y8YtJVOkBXHZQpuO7lypqVRcFQWhNYo=) 2: ABD84FB00F8A11EF943CC917C4F9AE02.roa (hash: PDnutuYB/riFGiwE/DA4jtgTvwtaDb0EZnLNk2dEE1g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.crl rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:23:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B74D6, serialNumber=77464A846F77D1C4D366A306B806939FCF2A601A Validity Not Before: Aug 23 05:23:56 2025 GMT Not After : Aug 30 05:23:56 2025 GMT Subject: CN=68a9506c-c199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:ba:c9:00:15:1e:43:9d:d8:28:04:50:4f:1e: 1b:f1:2c:77:95:db:10:30:0d:41:aa:bf:2f:c1:31: 6c:97:d9:b0:e3:b4:61:3a:0d:35:6a:c2:5d:a3:6f: 5f:d6:d2:95:eb:b1:33:a0:a8:21:81:61:72:7d:e8: d2:f4:5e:99:99:94:19:39:e3:d6:00:f6:e4:73:f0: 67:8f:8d:1b:e8:88:2c:d8:71:9b:14:ae:67:e3:64: 30:b2:b2:91:6a:94:0d:07:35:ea:f6:95:87:16:34: 2a:46:24:56:85:85:27:75:2b:ff:fb:3b:8f:e7:f6: b0:38:69:0d:49:c7:d6:d5:71:3d:e8:18:8c:88:60: 87:d4:39:6b:45:64:3b:b9:bf:ba:e9:0a:2f:bf:ef: 6f:ed:91:bc:fb:04:2b:cd:50:cd:a9:3a:11:50:0f: 0e:6c:51:72:1b:59:0b:a0:2b:6b:af:17:1e:8b:fe: 41:f7:d9:08:44:b7:a0:f6:c6:6d:4b:0d:d8:30:9b: d1:ae:08:20:97:9a:7e:b7:1b:45:9a:a9:d7:57:95: 62:b0:a2:9d:64:63:7d:fd:c8:2f:10:0e:1d:6f:85: ad:63:05:b3:8f:07:36:21:34:5b:b2:b7:05:8d:11: 7a:23:52:fc:43:a3:60:92:9b:27:b3:b4:cc:49:99: 83:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:E6:BD:E2:88:1B:A7:1C:29:8B:E2:46:A2:93:E7:D5:38:2B:E7:94 X509v3 Authority Key Identifier: keyid:77:46:4A:84:6F:77:D1:C4:D3:66:A3:06:B8:06:93:9F:CF:2A:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:9f:c1:4d:9f:b8:0d:d6:b2:c0:4a:7e:42:88:0a:e9:da:90: 3d:5b:26:8e:2d:a2:72:f6:17:b2:7f:60:39:0d:6f:40:ce:ff: fd:11:ba:ed:24:8b:91:5f:13:76:c8:e6:12:da:bc:f0:86:0d: 9d:cd:1e:3f:04:f3:b0:8e:f1:35:d1:fb:dd:b2:fb:cf:6b:dd: 1b:a6:c3:4a:d4:99:d4:3b:1e:88:b5:d8:bf:2d:71:2e:a2:ea: 06:fa:ae:e0:ff:52:80:08:24:ef:45:38:19:13:7a:6b:b3:1c: 23:1b:12:7c:ed:4f:47:4b:6e:37:19:63:50:53:0a:33:52:e6: a2:a3:75:64:10:39:8a:b8:d5:7c:26:97:cf:39:1f:55:60:ef: 26:37:7d:bc:78:15:c2:84:89:43:29:21:d7:e9:ff:15:4e:a6: 0f:60:7b:7b:e8:8f:59:ab:9d:c7:17:93:81:a6:a8:39:fe:ef: b0:68:70:1b:c3:64:e4:0a:63:09:c7:a9:c7:29:81:1a:fb:ba: bf:10:70:fa:48:9b:91:f9:98:22:ae:00:51:ba:97:dd:e8:9c: e4:ee:57:d7:67:da:de:09:bb:0e:8c:49:a7:34:32:0e:28:15: ef:81:c4:c9:2d:69:1f:66:c4:4b:01:da:34:3a:1a:47:68:5d: 32:35:87:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc0RDYxMTAvBgNVBAUTKDc3NDY0QTg0NkY3N0QxQzREMzY2QTMwNkI4MDY5MzlG Q0YyQTYwMUEwHhcNMjUwODIzMDUyMzU2WhcNMjUwODMwMDUyMzU2WjAYMRYwFAYD VQQDEw02OGE5NTA2Yy1jMTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8LrJABUeQ53YKARQTx4b8Sx3ldsQMA1Bqr8vwTFsl9mw47RhOg01asJdo29f 1tKV67EzoKghgWFyfejS9F6ZmZQZOePWAPbkc/Bnj40b6Igs2HGbFK5n42QwsrKR apQNBzXq9pWHFjQqRiRWhYUndSv/+zuP5/awOGkNScfW1XE96BiMiGCH1DlrRWQ7 ub+66Qovv+9v7ZG8+wQrzVDNqToRUA8ObFFyG1kLoCtrrxcei/5B99kIRLeg9sZt Sw3YMJvRrgggl5p+txtFmqnXV5VisKKdZGN9/cgvEA4db4WtYwWzjwc2ITRbsrcF jRF6I1L8Q6Ngkpsns7TMSZmDxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHfmveKI G6ccKYviRqKT59U4K+eUMB8GA1UdIwQYMBaAFHdGSoRvd9HE02ajBrgGk5/PKmAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzRENi9ERTIyQUQyNDBD REYxMUVGOTQ4NEU2MkFDNEY5QUUwMi9kMFpLaEc5MzBjVFRacU1HdUFhVG44OHFZ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QwWktoRzkzMGNUVFpxTUd1QWFUbjg4cVlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzRENi9ERTIyQUQyNDBDREYxMUVGOTQ4NEU2MkFDNEY5QUUwMi9kMFpLaEc5MzBj VFRacU1HdUFhVG44OHFZQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKn8FNn7gN1rLASn5CiArp2pA9WyaOLaJy9heyf2A5DW9Azv/9Ebrt JIuRXxN2yOYS2rzwhg2dzR4/BPOwjvE10fvdsvvPa90bpsNK1JnUOx6Itdi/LXEu ouoG+q7g/1KACCTvRTgZE3prsxwjGxJ87U9HS243GWNQUwozUuaio3VkEDmKuNV8 JpfPOR9VYO8mN328eBXChIlDKSHX6f8VTqYPYHt76I9Zq53HF5OBpqg5/u+waHAb w2TkCmMJx6nHKYEa+7q/EHD6SJuR+ZgirgBRupfd6Jzk7lfXZ9reCbsOjEmnNDIO KBXvgcTJLWkfZsRLAdo0OhpHaF0yNYcA -----END CERTIFICATE-----Generated at Sun Aug 24 00:11:15 2025 by rpki-client